This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft File: 34pOYRe8o2iUDWjphUeYuWZgndQ.mft (raw, json) Hash identifier: RsmlDCPjomOy+vN4IziSwMyTK4Juv3SN6BMA2VTHT4g= Subject key identifier: AF:A8:3F:F1:BC:3F:B7:A5:44:A7:FD:80:36:F3:EA:A6:2E:95:95:1E Authority key identifier: DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 Certificate issuer: /CN=A91C8530/serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4 Certificate serial: 0940 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft Manifest number: 0938 Signing time: Mon 22 Dec 2025 19:36:08 +0000 Manifest this update: Mon 22 Dec 2025 19:36:08 +0000 Manifest next update: Mon 29 Dec 2025 19:36:08 +0000 Files and hashes: 1: 34pOYRe8o2iUDWjphUeYuWZgndQ.crl (hash: F/iyVbeOVCtEaTNGK+8qTn7MVoRPspVY1MN2Hn7RAp8=) 2: 9BD30C5EB1E711EA86EFFD5EC4F9AE02.roa (hash: ASBYl23bkyFf4r9vJSPXkAo/YYzd1cAPrmJW3FNKskU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:36:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2368 (0x940) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8530, serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4 Validity Not Before: Dec 22 19:36:08 2025 GMT Not After : Dec 29 19:36:08 2025 GMT Subject: CN=69499da8-3826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:fc:7c:13:12:2a:00:6b:69:fe:b3:d4:ca:6b: 24:43:01:4f:69:0f:cc:96:3a:80:8c:79:8d:93:6d: b9:6f:64:88:ad:78:e6:bf:5c:99:9e:15:8e:30:89: 81:a7:63:78:17:f8:ff:4b:db:8a:b8:65:27:46:fa: ce:66:85:11:22:f1:ee:4d:ff:2a:f3:bc:59:40:54: 5f:47:d6:d8:07:da:14:ba:f3:13:aa:2f:70:9f:e0: af:b0:61:5d:fb:3c:48:ea:51:65:b9:de:c6:01:70: 8b:f6:54:57:a2:c4:05:b3:69:16:4d:af:66:28:c9: ab:cf:bd:34:5f:51:22:46:3d:92:f4:3d:fb:7b:de: 89:eb:b5:a2:e4:a2:85:cd:d6:4f:3d:a5:f7:ba:e9: c9:3e:00:6f:c8:fc:09:59:aa:99:1c:a4:fc:9c:85: 2a:43:1d:03:8f:37:20:71:22:52:bb:89:1f:27:e5: 29:bd:ff:2b:13:40:97:18:7b:2f:70:3f:53:f4:73: ad:cc:ad:42:04:66:23:aa:92:be:2c:dc:b0:1f:57: 30:6c:62:0f:c1:65:a6:88:78:35:9d:47:43:57:17: 3f:3e:5f:f5:e9:cc:b3:c8:60:d4:d6:f5:a6:4e:39: 32:0f:d7:b0:91:9d:5e:f1:be:13:f7:50:81:fd:6f: 64:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:A8:3F:F1:BC:3F:B7:A5:44:A7:FD:80:36:F3:EA:A6:2E:95:95:1E X509v3 Authority Key Identifier: keyid:DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:d6:c7:33:9e:e6:01:e3:92:9f:48:9b:f2:8e:f6:5f:f4:91: eb:ac:c1:a4:31:d8:26:34:f3:eb:d1:18:e5:83:2f:db:0c:8f: 67:ed:4e:70:98:e7:ac:7b:e8:41:15:38:b6:f7:2c:34:99:7c: 29:d1:a3:d5:07:a9:a2:3f:ab:7a:94:d6:11:77:cf:45:88:12: 01:7b:58:76:23:79:a7:a6:61:35:f4:fa:f1:f8:99:ba:6d:46: d6:23:d9:0e:1d:c7:68:c8:61:5c:ff:cb:a6:c7:36:b0:8e:c6: c5:01:24:87:01:20:0d:f2:25:70:b6:f1:e9:6d:14:2a:23:49: 96:a7:f0:fb:8f:74:50:06:b7:c1:a9:d6:10:fb:ec:db:58:65: 5f:36:0c:52:c1:41:ba:7d:a7:7a:6f:11:13:6b:0b:4d:34:61: 57:e0:f8:8f:31:a5:64:fa:37:09:33:65:4c:8f:70:1b:31:1f: 75:cc:11:5d:dc:34:de:df:02:8b:05:7a:3b:0f:6e:26:f3:45: f2:ae:4f:8c:38:80:53:43:fe:e3:01:1e:76:c8:2c:91:6a:04: b7:70:ea:64:53:8f:2f:68:10:26:b3:b3:36:79:ee:e9:4d:ce: 72:1b:34:f2:39:4d:c6:ff:f2:09:1d:1e:8b:fe:ac:24:34:bf: 2d:20:d4:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzg1MzAxMTAvBgNVBAUTKERGOEE0RTYxMTdCQ0EzNjg5NDBENjhFOTg1NDc5OEI5 NjY2MDlERDQwHhcNMjUxMjIyMTkzNjA4WhcNMjUxMjI5MTkzNjA4WjAYMRYwFAYD VQQDDA02OTQ5OWRhOC0zODI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoPx8ExIqAGtp/rPUymskQwFPaQ/MljqAjHmNk225b2SIrXjmv1yZnhWOMImB p2N4F/j/S9uKuGUnRvrOZoURIvHuTf8q87xZQFRfR9bYB9oUuvMTqi9wn+CvsGFd +zxI6lFlud7GAXCL9lRXosQFs2kWTa9mKMmrz700X1EiRj2S9D37e96J67Wi5KKF zdZPPaX3uunJPgBvyPwJWaqZHKT8nIUqQx0DjzcgcSJSu4kfJ+Upvf8rE0CXGHsv cD9T9HOtzK1CBGYjqpK+LNywH1cwbGIPwWWmiHg1nUdDVxc/Pl/16cyzyGDU1vWm TjkyD9ewkZ1e8b4T91CB/W9kawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK+oP/G8 P7elRKf9gDbz6qYulZUeMB8GA1UdIwQYMBaAFN+KTmEXvKNolA1o6YVHmLlmYJ3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODUzMC8xOEY2NkQ4NkIx RTYxMUVBQUE5MTMzNUFDNEY5QUUwMi8zNHBPWVJlOG8yaVVEV2pwaFVlWXVXWmdu ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM0cE9ZUmU4bzJpVURXanBoVWVZdVdaZ25kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODUzMC8xOEY2NkQ4NkIxRTYxMUVBQUE5MTMzNUFDNEY5QUUwMi8zNHBPWVJlOG8y aVVEV2pwaFVlWXVXWmduZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQ1scznuYB45KfSJvyjvZf9JHrrMGkMdgmNPPr0Rjlgy/bDI9n7U5w mOese+hBFTi29yw0mXwp0aPVB6miP6t6lNYRd89FiBIBe1h2I3mnpmE19Prx+Jm6 bUbWI9kOHcdoyGFc/8umxzawjsbFASSHASAN8iVwtvHpbRQqI0mWp/D7j3RQBrfB qdYQ++zbWGVfNgxSwUG6fad6bxETawtNNGFX4PiPMaVk+jcJM2VMj3AbMR91zBFd 3DTe3wKLBXo7D24m80Xyrk+MOIBTQ/7jAR52yCyRagS3cOpkU48vaBAms7M2ee7p Tc5yGzTyOU3G//IJHR6L/qwkNL8tINSI -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:38 2025 by rpki-client